CVE-2018-18876

2019-06-1814:27:40

mitre

www.cve.org

AI Score

5.2

Confidence

High

EPSS

0.001

Percentile

31.7%

JSON

In firmware version MS_2.6.9900 of Columbia Weather MicroServer, a readouts_rd.php directory traversal issue makes it possible to read any file present on the underlying operating system.

References

applied-risk.com/labs/advisories

ics-cert.us-cert.gov/advisories/ICSA-19-078-02